RHDHBUGS-2260: trust corporate-issued certificate by deerskindoll · Pull Request #2211 · redhat-developer/red-hat-developers-documentation-rhdh

deerskindoll · 2026-05-18T12:17:07Z

IMPORTANT: Do Not Merge - To be merged by Docs Team Only

Version(s):

main, release-1.10
Issue:

https://redhat.atlassian.net/browse/RHDHBUGS-2260
Preview:

rhdh-bot · 2026-05-18T12:19:29Z

albarbaro · 2026-05-18T12:47:45Z

+====
+
+.Prerequisites
+* You have a CA-issued certificate.


I would rather say You have access to the public root or intermediate certificate of the CA you wish to trust., as CA-issued certificate implies that you want to use a leaf certificate, not the CA.

albarbaro · 2026-05-18T12:55:18Z

+
+
+
+If you want to inject multiple CAs or certificates chains, you have to:


I would rather merge this in the step 2 for clarity.

done. I added it to the admonition to make sure it pops (visually)

albarbaro · 2026-05-18T12:56:41Z

+
+
+.Procedure
+. Export the certificate from its source.


I would rather say: Export the corporate CA certificate chain (root and intermediate certificates) from its source.

albarbaro · 2026-05-18T12:57:40Z

+
+.Procedure
+. Export the certificate from its source.
+. Convert the certificate to `.pem` format.


Better to mention: Convert the certificate or the entire certificate chain to .pem format.

albarbaro · 2026-05-18T12:59:50Z

+====
+. Create a secret  containing the CA.
+. Mount the secret into {product-very-short} environment. Follow the steps specific for your deployment method: Helm or Orchestrator.
+. Set the `NODE_EXTRA_CA_CERTS` to point to the mount path of the secret.


I would be more explicit on how to set the env variable, as you did for the secret.

Configmap? I'm sorry, I'm not sure what you mean. I didn't mention configmap anywhere (I think)?

albarbaro · 2026-05-18T13:00:30Z

+Setting the CA directly as an environmental value is not supported.
+====
+//Add link!!!!!
+. OPTIONAL: Set up {rhbk} metrics.


I don't think metrics play any role here, this step can be omitted.

I was a silly goose and mixed up where to mention the metrics. it's not supposed to be here, exactly as you said

removed. I featured it by mistake

sonarqubecloud · 2026-05-20T15:12:48Z

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

deerskindoll added 3 commits May 13, 2026 15:14

draft

4b168a9

draft

aa21a17

draft

7eff862

deerskindoll temporarily deployed to internal May 18, 2026 12:17 — with GitHub Actions Inactive

deerskindoll changed the title ~~[DRAFT] RHDHBUGS-2260: trust CA-issued certificate~~ [DRAFT] RHDHBUGS-2260: trust corporate-issued certificate May 18, 2026

albarbaro suggested changes May 18, 2026

View reviewed changes

deerskindoll added 2 commits May 20, 2026 11:17

RHDHBUGS-2260

5b40e1d

RHDHBUGS-2260

ac98b94

deerskindoll temporarily deployed to internal May 20, 2026 09:28 — with GitHub Actions Inactive

deerskindoll added 2 commits May 20, 2026 12:36

RHDHBUGS-2260

736ea0e

RHDHBUGS-2260

e5fbe15

deerskindoll temporarily deployed to internal May 20, 2026 10:39 — with GitHub Actions Inactive

RHDHBUGS-2260

783eeab

deerskindoll temporarily deployed to internal May 20, 2026 11:03 — with GitHub Actions Inactive

deerskindoll added 2 commits May 20, 2026 14:44

RHDHBUGS-2260

76900e8

RHDHBUGS-2260

7705d95

deerskindoll temporarily deployed to internal May 20, 2026 12:47 — with GitHub Actions Inactive

RHDHBUGS-2260

89c828d

deerskindoll temporarily deployed to internal May 20, 2026 13:12 — with GitHub Actions Inactive

deerskindoll changed the title ~~[DRAFT] RHDHBUGS-2260: trust corporate-issued certificate~~ RHDHBUGS-2260: trust corporate-issued certificate May 20, 2026

RHDHBUGS-2260

53fc076

deerskindoll temporarily deployed to internal May 20, 2026 13:33 — with GitHub Actions Inactive

RHDHBUGS-2260

8285bdc

deerskindoll temporarily deployed to internal May 20, 2026 13:39 — with GitHub Actions Inactive

RHDHBUGS-2260

4b2611b

deerskindoll temporarily deployed to internal May 20, 2026 15:12 — with GitHub Actions Inactive

deerskindoll added the Technical review needed 🔩 Test all the procedures label May 20, 2026




		If you want to inject multiple CAs or certificates chains, you have to:

Conversation

deerskindoll commented May 18, 2026

Uh oh!

rhdh-bot commented May 18, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

PR Build Results

control-access_authentication-in-rhdh

get-started_setting-up-and-configuring-your-first-red-hat-developer-hub-instance

Content Quality Assessment

CQA Report

Summary

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

albarbaro May 18, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

sonarqubecloud Bot commented May 20, 2026

Quality Gate passed

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

rhdh-bot commented May 18, 2026 •

edited

Loading

albarbaro May 18, 2026 •

edited

Loading